Abstract
There is another cryptographic structure similar to the X.509 certificate called the PKCS #10 Certificate Signing Request (CSR). This is used to submit a public key and information to construct a Subject Distinguished Name to a Registration Authority (RA) to request creation of an X.509 digital certificate. The RA must validate all information submitted in the CSR before passing the request on to the Certification Authority (CA), who actually creates the certificate and digitally signs it. To prevent fraud, the CSR is digitally signed using the private key associated with the submitted public key. Once the CSR has been submitted, there is no need to keep it around (you can actually create a new CSR from any existing digital certificate for renewal or replacement purposes).
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to APress Media, LLC, part of Springer Nature
About this chapter
Cite this chapter
Hughes, L.E. (2022). PKCS #10 Certificate-Signing Request (CSR). In: Pro Active Directory Certificate Services. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-7486-6_6
Download citation
DOI: https://doi.org/10.1007/978-1-4842-7486-6_6
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-7488-0
Online ISBN: 978-1-4842-7486-6
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)